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* ^Application/Control Number: 09/741 5 680 Page 2 

Art Unit: 2161 

DETAILED ACTION 

Response to Amendment 

1 . This Office Action is response to amendment filed on 2/16/2007. 

2. Applicant's amendments to claims 49-66 are acknowledged. Consequently, rejection to 
claims 49 - 66 under 35 U.S.C. 1 12, second paragraph is withdrawn; claims 49 - 66 are 
currently pending. 

Claim Rejections - 35 USC § 103 

3. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

4. Claims 49 - 50, 54 - 56, 60 - 62, 66 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over D. Richard Kuhn (U.S. 6,023,765) in view of Sweet et al (U.S. 2002/0031230 
Al). 

♦ As per claims 49, 55, 61 

Kuhn discloses a method/a computer-readable storage medium (corresponds to MLS system, col. 
4, lines 25 -30) and an apparatus for managing a database system, comprising: 

- "Receiving a command to perform an administrator function involving a user within the 
database system" (See Fig. 3, col.7, lines 65 - 66). Any type of users can make the 
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command in the privileged classes (Fig. 1, element 10). "Involving a user within the 
database system" corresponds to a object or documents or employ resources (col. 4, lines 
53-56). 

- "Determining if the user is a sensitive user who is empowered to access sensitive data in 
the database system". In this case, the Examiner interpret the phrase "the user is a 
sensitive user who is empowered to access sensitive data in the database system" as a 
"document or employ resource" that are protected in the system. The object is attached 
label such as "CONFIDENTIAL, SECRET, TOP SECRET" (col.6, lines 53 - 55). Kuhn 
teaches that in order to access to the object, it must determine the sensitivity level of the 
information (Col. 10, lines 10-12). 

- " If the user is not a sensitive user, and if the command is received from a normal 
database administrator for the database system, allowing the administrative function to 
proceed" (See col. 7, lines 18 - 24, 65 - col. 8, lines 4). Kuhn teaches that the system 
would only allow the use access to the object when the security levels equal or less than 
his/her own clearance level using the mapping. Therefore, if the document is not sensitive 
(not a sensitive user) such as having labeled "confidence", and the user is having a 
"confidence" level (normal administrator), then the systems will "allowing the 
administrative function to proceed". 

- " If the user is a sensitive user, and if the command is received from a normal database 
administrator, preventing the normal database administrator from performing the 
administrative function involving the sensitive user" (See col. 7, lines 18 - 24, 65 - col. 
8, lines 4). As discussed above, Kuhn teaches that the system would only allow the use 
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access to the object when the security levels equal or less than his/her own clearance 
level using the mapping. Therefore, if the document is sensitive (a sensitive user) such as 
having labeled "top secret", and the user is having a "confidence" level (normal 
administrator), then the systems will "disable the administrative function to proceed". 

- " If the user is a sensitive user, and if the command is received from a security officer 
within the group of one or more security officers, allowing the administrative function to 
proceed". Again, by applying the same test above, the system would allow the security 
officer to perform the administrative function since the security officer is the highest 
level in the database system. 

- " A command receiving mechanism configured to receive a command" corresponds to 
the external system 24 (See Fig. 2, element 24). 

Kuhn does not clearly teach that the database system has a plurality of administrators, and at 
least one of the pluralities of administrators is a security officer within the group of one or more 
security officers. Kuhn is silent on teaching that the database system includes normal database 
administrators, and security officers. 

However, Sweet, on the other hand, discloses a security system that comprises: 

- " Plurality of administrators" page 7, paragraph 0090. 
"The sensitive object" See page 6, paragraph 0081. 

- " Wherein at least one of the plurality of administrators is a security officer who can 
perform administrative functions on sensitive objects" See page 7, paragraph 0090. 

- " Wherein an administrator in the plurality of administrators who is not a security officer 
cannot become a sensitive user and thereby obtain access to sensitive objects indirectly" 
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See page 7, paragraph 0091. Wherein, "an administrator in the plurality of administrators 
who is not a security officer" can be a normal administrator in domain 125, who is 
responsible for the configuration and management only. 

- "If the object is not a sensitive object, and if the command is received from an 
administrator who is not a security officer; allowing the administrative function to 
proceed 55 page 7, paragraph 0090 - 0091, 0152. 

- "If the object is a sensitive object, and if the command is received from an administrator 
who is not a security officer, disallowing the administrative function" page 7, paragraph 
0090-0091,0165. 

As discussed above, the Sweet discloses a hierarchical administrative group according to 
different levels of administrative tasks (see page 3 paragraph 0035 of Sweet), and Kuhn 
teaches that depending on user privileges, the system will allow the user to access to the 
object (See col. 7, lines 18 - 24, 65 - col. 8, lines 4 of Kuhn). 
It would have been obvious to one with ordinary skill in the art at the time the invention was 
made to apply the teaching of Sweet into the system of Kuhn because both invention were 
available and the teaching of Sweet provides secure electronic access to the system using the 
security officer and administrators; the combination would protect the database more secure by 
using different administrator levels so that an administrator in the plurality of administrators who 
is not a security officer (using administrator group in Sweet) cannot perform administrative 
functions on sensitive object (using Kuhn invention). 
♦ As per claims 50, 56, 62, Kuhn and Sweet disclose: 
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- "A request to perform an operation" corresponds to "a command to perform an 
administrative function" See Fig. 3, col.7, lines 65 - 66 of Kuhn. 

- " If the data item is a sensitive data item containing sensitive information and if the 
request is received from a sensitive user who is empowered to access sensitive data, 
allowing the operation to proceed if the sensitive user has access rights to the sensitive 
data item" The Examiner in this case will interpret the "data item" as "document" in 
Kuhn reference. Again, by applying the same test above, the system would allow the 
sensitive user who is empowered to access sensitive data to perform the administrative 
function since the sensitive user is the highest level in the database system (See col. 7, 
lines 1 8 - 24, 65 - col. 8, lines 4 of Kuhn). 

- " If the data item is a sensitive data item and the request is received from a user who is 
not a sensitive user, disallowing the operation" (See col. 7, lines 18 - 24, 65 - col. 8, lines 
4). As discussed above, Kuhn teaches that the system would only allow the use access to 
the object when the security levels equal or less than his/her own clearance level using 
the mapping. Therefore, if the document is sensitive (a sensitive data) such as having 
labeled "top secret", and the user is having a "confidence" level (not a sensitive user), 
then the systems will "disable the administrative function to proceed". 

♦ As per claims 54, 60, 66, Kuhn and Sweet disclose: 

- " Wherein if the user is not a sensitive user, and if the command to perform the 
administrative function is received from a security officer, the method further comprises 
allowing the security officer to perform the administrative function on the user" See col. 
7, lines 18 - 24, 65 - col. 8, lines 4 of Kuhn. 
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5. Claims 51 - 53, 57 - 59, 63 - 66 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over D. Richard Kuhn (U.S. 6,023,765) in view of Sweet et al (U.S. 2002/0031230 
Al) as applied to claims 49 - 50 above, and further in view of Minear et al (U.S. 5,983,350). 

♦ As per claim 51 - 53, 57 - 59, 63 - 66, Kuhn and Sweet disclose: 
The combination of Kuhn and Sweet fail to disclose: 

- " Wherein if the data item is a sensitive data item, if the operation is allowed to proceed, 
and if the operation involves retrieval of the data item, the method further comprises 
decrypting the data item using an encryption key after the data item is retrieved". 
However, this is a well-known technique in the art to protect the data when transferring in the 
network. Minear provided an example of it. Minear teaches a method for securely transferring 
information in the network (col. 1, lines 8-11, Minear) comprising the decrypting/encrypting 
data (col. 2, lines 52 - 64, Minear). Minear also teaches that the encryption key is stored in a 
table ( col. 7, lines 29 - 35, Minear). 

It would have been obvious to one with ordinary skill in the art at the time the invention was 
made to apply the teaching of Minear into the combination of Kuhn/Sweet because the 
combination would protect the data more secure and prevent the unauthorized user to access the 
data. 

Response to Arguments 

6. Applicant's arguments filed 5/12/2006 have been fully considered but they are not 
persuasive. 
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A pplicant argues that Kuhn or Sweet do not suggests a special administrator that is the 
only administrator that can perform administrative functions on sensitive users (page 9 of the 
Remark). The Examiner respectfully disagrees. 

First of all, Applicant stated that "Hence, any add/delete/modify operations on any of the 
sensitive user information can be done only by the security officer 136" (page 8, lines 15 - 16 of 
the instant application); "tables containing sensitive information 124" (page 7, lines 10-11); 
and " an object representing a sensitive user" (page 9, lines 23 - 24). Therefore, information that 
represents a sensitive user also called "sensitive object" in the database. 
Kuhn teaches "objects within the protected system, such as stored documents, or to employ 
resources" (col. 4, lines 54 - 56 of Kuhn). The object is attached label such as 
"CONFIDENTIAL, SECRET, TOP SECRET" (col.6, lines 53 - 55, Kuhn). Therefore, the 
object in Kuhn also is a "sensitive object". In addition, Sweet also discloses sensitive 
information in the invention. Sweet teaches "all domain-specific sensitive information is stored 
in encrypted form" (paragraph 0371 of Sweet). 

Therefore, both Kuhn and Sweet disclose a "sensitive object" that represents "sensitive 
information" as claimed in the claim invention. 

Conclusion 

7. THIS ACTION IS MADE FINAL, Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
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the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the mailing 
date of this final action. 

8. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to CamLinh Nguyen whose telephone number is (571) 272-4024. 
The examiner can normally be reached on Monday-Friday. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Apu Mofiz can be reached on (571) 272-4080. The fax phone number for the 
organization where this application or proceeding is assigned is 571 - 273- 8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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